Revision 4750a96f

« Previous | Next »

ID	4750a96f6baf8949cc04a0c5b7167606544a4401

Added by Venkateswararao Jujjuri (JV) almost 14 years ago

virtio-9p: Security model for create/open2

In the mapped security model, VirtFS server intercepts and maps
the file object create and get/set attribute requests. Files on the fileserver
will be created with VirtFS servers (QEMU) user credentials and the
client-users credentials are stored in extended attributes. On the request
to get attributes, server extracts the client-users credentials
from extended attributes and sends them to the client.

On Host/Fileserver:
~~rw------~~. 2 virfsuid virtfsgid 0 2010-05-11 09:19 afile

On Guest/Client:
~~rw-r--r-~~ 2 guestuser guestuser 0 2010-05-11 12:19 afile

Signed-off-by: Venkateswararao Jujjuri <jvrao@linux.vnet.ibm.com>
Signed-off-by: Anthony Liguori <aliguori@us.ibm.com>

Files

added
modified
copied
renamed
deleted

View differences

hw
- file-op-9p.h (diff)
- virtio-9p-local.c (diff)
- virtio-9p.c (diff)

Archipelago » qemu

Revision 4750a96f

Files